CVE-2025-41050 | appRain CMF 4.0.5 base_libs data[Addon][layouts]/data[Addon][layouts_except] cross site scripting

A vulnerability labeled as problematic has been found in appRain CMF 4.0.5. Impacted is an unknown function of the file /apprain/developer/addons/update/base_libs. Such manipulation of the argument data[Addon][layouts]/data[Addon][layouts_except] leads to cross site scripting.

This vulnerability is traded as CVE-2025-41050. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More